Samaritan Daytop Village, Inc. (“SDV”) has disclosed a breach that they first discovered on September 22. The not-for-profit, which started 60 years ago as an outpatient drug treatment services provider but expanded its scope, reports that they could not be sure whether data was actually viewed, exfiltrated, neither, or both. It is all still under investigation. But in an October 26 press release, they note:
The following types of information that SDV maintains in its systems and that were or may have been, impacted by this incident include individuals’ names, dates of birth, Social Security numbers, medical diagnosis/medical treatment information, and health insurance information. To date, SDV has not received any reports of fraudulent misuse of any information potentially impacted.
SDV has established a dedicated assistance line for individuals seeking additional information regarding this incident. Individuals seeking additional information may call the toll-free assistance line at 855-675-3116. This toll-free line is available Monday – Friday from 9:00 a.m. – 9:00 p.m. Eastern Time. Individuals may also write to SDV at Samaritan Daytop Village, Inc., P.O. Box 4587, Portland, OR 97208-4597 with questions.
The full press release with additional material can be found on PRNewswire and on Samaritan Daytop Village’s web site.
This incident has not shown up on any dedicated leak site that DataBreaches.net routinely checks, and SDV does not make any mention of any ransom demand, so it’s not yet clear whether this was a ransomware incident or not.